Package org.keycloak.authorization

Class FGAPEvaluation

java.lang.Object
org.keycloak.authorization.FGAPEvaluation
All Implemented Interfaces:
Evaluation
public class FGAPEvaluation extends Object implements Evaluation

  • Constructor Details

  • Method Details

    • isGranted

      public boolean isGranted(Policy grantedPolicy, Scope grantedScope)
      Description copied from interface: Evaluation
      If the given scope should be granted when the given grantedPolicy is granting access to a resource or a specific scope.
      Specified by:
      isGranted in interface Evaluation
      Parameters:
      grantedPolicy - the policy granting access
      grantedScope - the scope that should be granted
      Returns:
      true if the scope is granted. Otherwise, returns false

    • isDenied

      public boolean isDenied(Policy deniedPolicy, Scope deniedScope)
      Description copied from interface: Evaluation
      If the given scope should not be granted when the given deniedPolicy denies access to a resource or a specific scope.
      Specified by:
      isDenied in interface Evaluation
      Parameters:
      deniedPolicy - the policy granting access
      deniedScope - the scope that should be granted
      Returns:
      true if the scope is granted. Otherwise, returns false

    • getPermission

      public ResourcePermission getPermission()
      Description copied from interface: Evaluation
      Returns the ResourcePermission to be evaluated.
      Specified by:
      getPermission in interface Evaluation
      Returns:
      the permission to be evaluated

    • getContext

      public EvaluationContext getContext()
      Description copied from interface: Evaluation
      Returns the EvaluationContext. Which provides access to the whole evaluation runtime context.
      Specified by:
      getContext in interface Evaluation
      Returns:
      the evaluation context

    • getPolicy

      public Policy getPolicy()
      Description copied from interface: Evaluation
      Returns the Policy. being evaluated.
      Specified by:
      getPolicy in interface Evaluation
      Returns:
      the evaluation context

    • getRealm

      public Realm getRealm()
      Description copied from interface: Evaluation
      Returns a Realm that can be used by policies to query information.
      Specified by:
      getRealm in interface Evaluation
      Returns:
      a Realm instance

    • getAuthorizationProvider

      public AuthorizationProvider getAuthorizationProvider()
      Specified by:
      getAuthorizationProvider in interface Evaluation

    • grant

      public void grant()
      Description copied from interface: Evaluation
      Grants the requested permission to the caller.
      Specified by:
      grant in interface Evaluation

    • deny

      public void deny()
      Description copied from interface: Evaluation
      Denies the requested permission.
      Specified by:
      deny in interface Evaluation

    • denyIfNoEffect

      public void denyIfNoEffect()
      Description copied from interface: Evaluation
      Denies the requested permission if a decision was not made yet.
      Specified by:
      denyIfNoEffect in interface Evaluation

    • getParentPolicy

      public Policy getParentPolicy()
      Description copied from interface: Evaluation
      Returns the parent policy (a permission) of the policy being evaluated.
      Specified by:
      getParentPolicy in interface Evaluation
      Returns:
      the parent policy

    • getEffect

      public Decision.Effect getEffect()
      Specified by:
      getEffect in interface Evaluation

    • setEffect

      public void setEffect(Decision.Effect effect)
      Specified by:
      setEffect in interface Evaluation